Router Manager

DATE	CVE	VULNERABILITY TITLE	RISK
2023-08-31	CVE-2023-41738	Unspecified vulnerability in Synology Router Manager Improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in Directory Domain Functionality in Synology Router Manager (SRM) before 1.3.1-9346-6 allows remote authenticated users to execute arbitrary commands via unspecified vectors. network low complexity synology	8.8
2023-08-31	CVE-2023-41739	Unspecified vulnerability in Synology Router Manager Uncontrolled resource consumption vulnerability in File Functionality in Synology Router Manager (SRM) before 1.3.1-9346-6 allows remote authenticated users to conduct denial-of-service attacks via unspecified vectors. network low complexity synology	6.5
2023-08-31	CVE-2023-41740	Unspecified vulnerability in Synology Router Manager Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in cgi component in Synology Router Manager (SRM) before 1.3.1-9346-6 allows remote attackers to read specific files via unspecified vectors. network low complexity synology	5.3
2023-08-31	CVE-2023-41741	Unspecified vulnerability in Synology Router Manager Exposure of sensitive information to an unauthorized actor vulnerability in cgi component in Synology Router Manager (SRM) before 1.3.1-9346-6 allows remote attackers to obtain sensitive information via unspecified vectors. network low complexity synology	7.5
2023-06-13	CVE-2023-2729	Unspecified vulnerability in Synology products Use of insufficiently random values vulnerability in User Management Functionality in Synology DiskStation Manager (DSM) before 7.2-64561 allows remote attackers to obtain user credential via unspecified vectors. network low complexity synology	7.5
2023-06-13	CVE-2023-0142	Unspecified vulnerability in Synology products Uncontrolled search path element vulnerability in Backup Management Functionality in Synology DiskStation Manager (DSM) before 7.1-42661 allows remote authenticated users to read or write arbitrary files via unspecified vectors. network low complexity synology	8.1
2023-05-16	CVE-2023-32955	Unspecified vulnerability in Synology Router Manager Improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in DHCP Client Functionality in Synology Router Manager (SRM) before 1.2.5-8227-6 and 1.3.1-9346-3 allows man-in-the-middle attackers to execute arbitrary commands via unspecified vectors. network high complexity synology	8.1
2023-05-16	CVE-2023-32956	Unspecified vulnerability in Synology Router Manager Improper neutralization of special elements used in an OS command ('OS Command Injection') vulnerability in CGI component in Synology Router Manager (SRM) before 1.2.5-8227-6 and 1.3.1-9346-3 allows remote attackers to execute arbitrary code via unspecified vectors. network low complexity synology critical	9.8
2023-01-05	CVE-2022-43932	Unspecified vulnerability in Synology Router Manager Improper neutralization of special elements in output used by a downstream component ('Injection') vulnerability in CGI component in Synology Router Manager (SRM) before 1.2.5-8227-6 and 1.3.1-9346-3 allows remote attackers to read arbitrary files via unspecified vectors. network low complexity synology	7.5
2023-01-05	CVE-2023-0077	Unspecified vulnerability in Synology Router Manager Integer overflow or wraparound vulnerability in CGI component in Synology Router Manager (SRM) before 1.2.5-8227-6 and 1.3.1-9346-3 allows remote attackers to overflow buffers via unspecified vectors. network low complexity synology critical	9.8